EOS BP Guide: How to Setup a Block Signing Key

Every Block Producer needs to be able to manage his keys in a secure and efficient manner for a sake of his own security and security of the EOS Blockchain.

As a best practice every BP account must use 4 key pairs:

  1. Owner keys — is the ultimate golden key proving ownership that you store security and hope to never need to use it.
  2. Active keys — used for signing and executing transactions and actions on a network. Should be kept secure.
  3. Signature keys — separate key pair used only for signing blocks and can not perform any other operation.
  4. Claim keys — separate key pair used only to claim rewards action but can not send transactions.

If you currently have your active key listed in your config.ini for signing blocks — you need to stop it and replace it with a separate Signature key following these simple three steps process:

Create new key pair to be assigned as Signature key:

cleos create key

Replace signature provider record in your config.ini with the new key:


Call regproducer command with the new signature key:



cleos system regproducer eostribeprod EOS7gD4EXA96SEQ9RQrLfbU19tLHmGPcJXSPXdkrQh4bCkUghg6QEhttps://eostribe.io 840

Restart your producer node after completing above steps. If you are an active Block Producer — you may want to do those steps as quickly as possible to avoid missing blocks.

Again if you have done this already as I believe is the case for top BPs — good job!
And if you have not — please implement these steps as soon as you can.

We will be auditing all top 21 BPs for their usage of keys and publishing report by August 1st, 2018.

The process for setting up separate Claim key is described in my personal post earlier:


The Claim key allows you to automate the claim process or delegate this task to someone without disclosing your BP account active key.

Connect With Us